Jay Dhulia

DevOps Engineer

San Francisco, California, United States9 yrs 5 mos experience
Most Likely To SwitchHighly Stable

Key Highlights

  • Core maintainer of ConsoleMe, an AWS management tool.
  • Consistently discovered critical vulnerabilities at Netflix.
  • Led initiatives for secure AWS developer workflows.
Stackforce AI infers this person is a Cloud Security Engineer with a focus on Infrastructure and Vulnerability Management.

Contact

jaydhulia@hotmail.comLinkedIn

Skills

Core Skills

Cloud SecurityInfrastructure SecurityPenetration TestingInfrastructureVulnerability ManagementContinuous Integration And Continuous Delivery (ci/cd)FuzzingJava

Other Skills

AWS SecurityPython (Programming Language)Go (Programming Language)Amazon Web Services (AWS)User ResearchTerraformIdentity & Access Management (IAM)React.jsAWS CloudTrailHashiCorp VaultAmazon AthenaCircleCIStatic AnalysisBashC++

About

Software Engineer with a strong passion for Security. I enjoy breaking programs and then fixing them. I also enjoy developing tools to manage security at scale. In the past, I have worked on: - Finding bugs and vulnerabilities within internal code, using a variety of techniques such as Fuzzing, Static Analysis tools, and Source code review - Developing internal and external security tools to improve the overall development process from a security perspective - Developing tools to manage cloud resources on a large scale. An example of a project that I worked on at Netflix is ConsoleMe - AWS Management tool (https://github.com/Netflix/consoleme). Currently, I am one of the core maintainers and developers for this project. Languages: Python, Go, C++, C, Java, JavaScript Technologies & Frameworks: React, AWS, IAM, Terraform, Salt, Vault, K8s My full portfolio can also be found at https://jaydhulia.com

Experience

9 yrs 5 mos
Total Experience
3 yrs 2 mos
Average Tenure
3 yrs 11 mos
Current Experience

Netflix

3 roles

Senior Cloud Security Engineer

Promoted

Oct 2025Present · 7 mos

  • Established and guided the vision and strategic direction for AWS developer workflows, implementing secure guardrails while facilitating developer velocity.
  • Spearheaded the development of an internal Infrastructure as Code (IaC) solution and various AWS management tools (such as ConsoleMe and Weep) to realize the aforementioned vision.
  • Discovered several critical P0 vulnerabilities that would have allowed for a complete compromise of the Netflix AWS infrastructure, including CVE-2024-5023
  • Informally nicknamed Good Find for consistently uncovering critical vulnerabilities and actively contributing to the internal Red Team
  • Orchestrated multiple cross-organizational deprecation initiatives for legacy frameworks, collaborating with stakeholders to achieve a 100% deprecation rate through a seamless, 0-click transparent deprecation process with zero downtime.
  • Helped develop other Netflix engineers' skills by leading vulnerability walkthrough sessions
  • Significantly contributed to the development of ConsoleMe and Weep, taking a lead role in shaping the roadmap, defining the vision, and driving feature development.
Cloud SecurityAWS SecurityPenetration TestingPython (Programming Language)Go (Programming Language)Infrastructure Security

Cloud Security Engineer

Jun 2022Oct 2025 · 3 yrs 4 mos

Penetration TestingCloud SecurityPython (Programming Language)Go (Programming Language)Amazon Web Services (AWS)

Cloud Infrastructure Security Engineer Intern

Sep 2021Dec 2021 · 3 mos

  • Developed a CLI tool for multi-account AWS management framework using Go
  • Performed user research and gap analysis to determine current pain points when using the CLI tool, thereafter developed features and improved UX based on the results
  • Migrated users from legacy tool to new CLI tool with no user interaction while maintaining full backwards compatibility
Cloud SecurityUser ResearchInfrastructureGo (Programming Language)Amazon Web Services (AWS)

Wish

Security Infrastructure Engineer Intern

Jan 2021Apr 2021 · 3 mos · Remote

  • Built a log analysis tool using Python that allows for easy querying, aggregating and parsing of logs
  • Reduced the query time from ~55 minutes per query to ~25 seconds per query
  • Developed and deployed a CLI wrapper for SSH access into instances using Go
  • Deployed the required infrastructure for the above projects (AWS EKS clusters, DynamoDB tables, S3, IAM roles/policies) using TerraForm
Python (Programming Language)TerraformGo (Programming Language)Amazon Web Services (AWS)Identity & Access Management (IAM)Cloud Security+1

Netflix

Cloud Infrastructure Security Engineer Intern

May 2020Aug 2020 · 3 mos

  • Implemented a multi-account AWS management system using Python and React that allows for role creation, cloning, deletion, and policy application across multiple AWS accounts from the convenience of one framework (https://github.com/Netflix/consoleme)
  • Discovered critical AuthZ and XSS security bugs, and thereafter patched them
Penetration TestingPython (Programming Language)Amazon Web Services (AWS)Identity & Access Management (IAM)React.jsCloud Security

Wish

Security Infrastructure Engineer Intern

Sep 2019Dec 2019 · 3 mos · San Francisco Bay Area

  • Researched, designed and deployed a Hashicorp Vault cluster with etcd backend in production using Salt and Terraform on AWS to manage secrets
  • Wrote applications in Go that sync the local users in Vault with OIDC to ensure fine grained authorization controls and collect Prometheus metrics
  • Constructed a proxy server in Go and deployed it on a Kubernetes cluster
  • Created an application in Go that applies principle of least privilege by purging unused permissions from AWS IAM policies by using Athena and Cloudtrail
AWS CloudTrailHashiCorp VaultAmazon AthenaGo (Programming Language)Amazon Web Services (AWS)Cloud Security+1

Ecobee

Software Security Developer Intern

Jan 2019Apr 2019 · 3 mos · Toronto, Canada Area

  • Developed an automated tool using Bash and YAML to scan for security bugs in code
  • Integrated the security tool with CircleCI to allow for continuous testing and deployment through the configuration file
  • Incorporated the security tool with Slack by performing curl requests to the Slack API
  • Developed automated security tool to analyze security metrics using Prometheus, Grafana and GraphQL in Go
  • Found several critical security vulnerabilities, triaged them using CVSS scores, resolved them and verified the patches
  • Won an internal award and recognition for finding a significant security vulnerability
  • Deployed HashiCorp Vault on a Kubernetes cluster using GCP and Terraform
CircleCIStatic AnalysisBashVulnerability ManagementContinuous Integration and Continuous Delivery (CI/CD)

Blackberry

Software Security Researcher and Developer Intern

May 2018Aug 2018 · 3 mos · Waterloo, Ontario, Canada

  • Planned, designed and developed the fullstack implementation of a security framework for fuzzing using AFL++
  • Utilized Java and Spring to develop server side implementation of framework
  • Implemented the front end interface using JavaScript, HTML/CSS and Thymeleaf
  • Designed and created a native library API in C
  • Created a command line interface tool for QNX in C++
  • Performed vulnerability assessments through fuzzing and source code review to find and triage several critical security bugs
JavaC++Spring FrameworkCFuzzingJavaScript

South health campus

Research Intern

May 2016Aug 2016 · 3 mos · Calgary, Canada Area

  • Set up and collected data from patients in REDCap
  • Analyzed, interpreted and presented the data using SPSS and GraphPad

Mission medical clinic

Technical Development and Administrative

Feb 2012Aug 2017 · 5 yrs 6 mos · Calgary, Canada Area

  • Developed and updated word document templates using macros and VBA in MS Office
  • Trained staff in technology used in the clinic such as EMR

Education

University of Waterloo

Bachelor of Software Engineering — Computer Software Engineering

Sep 2017Apr 2022

University of Calgary

Bachelor's degree — Neuroscience

Jan 2013Jan 2017

Stackforce found 100+ more professionals with Cloud Security & Infrastructure Security

Explore similar profiles based on matching skills and experience

Utkarsh Agrawal

Utkarsh Agrawal

Senior Security Engineer

at Confidential

Bengaluru, India6 yrs 11 mos exp
Arun Yadav

Arun Yadav

Senior Security Engineer

at Spare

Bengaluru, India7 yrs 6 mos exp
Detection EngineeringSecurity Incident ResponseSecurity OperationsVulnerability Management
RR

Radhakrishnan Ravichandran

Sr. Cyber Security Analyst – Enterprise Vulnerability Management

at Landmark Group

Bengaluru, India8 yrs 7 mos exp
Application SecurityInformation SecurityPenetration TestingProject ManagementVulnerability Assessment
Okan YILDIZ

Okan YILDIZ

Staff Security Engineer

at Depop

Leighton Buzzard, United Kingdom12 yrs 3 mos exp
Application SecurityCloud ComputingDevSecOpsLeadership
Rami Alkafahje

Rami Alkafahje

Lead AI Security Architect

at IBM

Zurich, Switzerland7 yrs 8 mos exp
Cloud SecurityAI SecuritySolutions EngineeringAWS SecurityData Engineering
Aradhna Bhatia

Aradhna Bhatia

Senior Security Engineer

at Guidewire Software

Bengaluru, India8 yrs 9 mos exp
ComplianceInformation SecuritySoftware DevelopmentWeb Development
Priyal Viroja

Priyal Viroja

Associate Architect

at Tekion Corp

Bengaluru, India11 yrs 6 mos exp
Security AssessmentSecurity EngineeringVulnerability AssessmentVulnerability Research
Rohit P.

Rohit P.

Head Of Product & Platform Security

at LinkedIn

Sunnyvale, United States18 yrs 9 mos exp
Application SecurityInformation SecuritySecurity Architecture Design